last sync: 2024-Jun-13 18:14:14 UTC

Microsoft Managed Control 1160 - Security Authorization | Regulatory Compliance - Security Assessment and Authorization

Azure BuiltIn Policy definition

Source Azure Portal
Display name Microsoft Managed Control 1160 - Security Authorization
Id 3e797ca6-2aa8-4333-b335-7036f1110c05
Version 1.0.0
Details on versioning
Category Regulatory Compliance
Microsoft Learn
Description Microsoft implements this Security Assessment and Authorization control
Additional metadata Name/Id: ACF1160 / Microsoft Managed Control 1160
Category: Security Assessment and Authorization
Title: Security Authorization - Updating
Ownership: Customer, Microsoft
Description: The organization: Updates the security authorization Every three years or when a significant change occurs.
Requirements: The FedRAMP JAB, DISA/DoD authorizing officials, and other regulators update the security authorization as needed based on submissions by Microsoft driven by the regular reauthorization schedule every three years or when there is a significant change as defined in NIST SP 800-37 Revision 1, Appendix F, Page F7.
Mode Indexed
Type Static
Preview False
Deprecated False
Effect Fixed
audit
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups
Compliance Not a Compliance control
Initiatives usage none
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC